Virtual Programming » Vp-asp : Security Vulnerabilities, CVEs, CVSS score >= 7
SQL injection vulnerability in shopgiftregsearch.asp in VP-ASP Shopping Cart 6.09 and earlier allows remote attackers to execute arbitrary SQL commands via the LoginLastname parameter.
Max CVSS
7.5
EPSS Score
0.31%
Published
2007-01-13
Updated
2017-10-19
SQL injection vulnerability in shopcurrency.asp in VP-ASP 6.00 allows remote attackers to execute arbitrary SQL commands via the cid parameter.
Max CVSS
7.5
EPSS Score
0.67%
Published
2006-05-09
Updated
2017-10-19
SQL injection vulnerability in VP-ASP Shopping Cart 4.0 through 5.0 allows remote attackers to execute arbitrary SQL commands via the (1) Processed0 and (2) Processed1 parameters in a POST request to shopproductselect.asp.
Max CVSS
7.5
EPSS Score
0.27%
Published
2004-12-31
Updated
2017-07-11
Multiple SQL injection vulnerabilities in VP-ASP Shopping Cart 4.0 through 5.0 allow remote attackers to execute arbitrary SQL commands via the catalogid parameter in (1) shopreviewlist.asp and (2) shopreviewadd.asp.
Max CVSS
7.5
EPSS Score
0.19%
Published
2004-12-31
Updated
2017-07-11
SQL injection vulnerability in shopexd.asp for VP-ASP allows remote attackers to gain administrator privileges via the id parameter.
Max CVSS
10.0
EPSS Score
0.15%
Published
2003-08-18
Updated
2016-10-18
SQL injection vulnerability in shopadmin.asp in VP-ASP 4.0 allows remote attackers to execute arbitrary SQL commands and bypass authentication via the (1) username or (2) password fields.
Max CVSS
7.5
EPSS Score
0.35%
Published
2002-12-31
Updated
2009-04-11
6 vulnerabilities found